Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netgear prosafe network management system vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-49693
NETGEAR ProSAFE Network Management System has Java Debug Wire Protocol (JDWP) listening on port 11611 and it is remotely accessible by unauthenticated users, allowing malicious users to execute arbitrary code.
Netgear Prosafe Network Management System
9.8
CVSSv3
CVE-2021-27274
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MFileUploadController clas...
Netgear Prosafe Network Management System 1.6.0.26
9.6
CVSSv3
CVE-2016-1524
Multiple unrestricted file upload vulnerabilities in NETGEAR Management System NMS300 1.5.0.11 and previous versions allow remote malicious users to execute arbitrary Java code by using (1) fileUpload.do or (2) lib-1.0/external/flash/fileUpload.do to upload a JSP file, and then a...
Netgear Prosafe Network Management Software 300
1 EDB exploit
1 Article
8.8
CVSSv3
CVE-2021-27273
This vulnerability allows remote malicious users to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. Th...
Netgear Prosafe Network Management System 1.6.0.26
8.6
CVSSv3
CVE-2016-1525
Directory traversal vulnerability in data/config/image.do in NETGEAR Management System NMS300 1.5.0.11 and previous versions allows remote authenticated users to read arbitrary files via a .. (dot dot) in the realName parameter.
Netgear Prosafe Network Management Software 300 1.5.0.11
2 EDB exploits
1 Article
8.3
CVSSv3
CVE-2021-27275
This vulnerability allows remote malicious users to disclose sensitive information and delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentic...
Netgear Prosafe Network Management System 1.6.0.26
7.8
CVSSv3
CVE-2023-49694
A low-privileged OS user with access to a Windows host where NETGEAR ProSAFE Network Management System is installed can create arbitrary JSP files in a Tomcat web application directory. The user can then execute the JSP files under the security context of SYSTEM.
Netgear Prosafe Network Management System
7.1
CVSSv3
CVE-2021-27272
This vulnerability allows remote malicious users to delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. Th...
Netgear Prosafe Network Management System 1.6.0.26
7.1
CVSSv3
CVE-2021-27276
This vulnerability allows remote malicious users to delete arbitrary files on affected installations of NETGEAR ProSAFE Network Management System 1.6.0.26. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. Th...
Netgear Prosafe Network Management System 1.6.0.26
NA
CVE-2023-50231
This vulnerability allows remote attackers to escalate privileges on affected installations of NETGEAR ProSAFE Network Management System. Minimal user interaction is required to exploit this vulnerability. The specific flaw exists within the saveNodeLabel method. The issue result...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »